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Network robustness against attacks is one of the most fundamental researches in network science 
as it is closely associated with the reliability and functionality of various networking paradigms. 
However, despite the study on intrinsic topological vulnerabilities to node removals, little is known 
on the network robustness when network defense mechanisms are implemented, especially for net¬ 
worked engineering systems equipped with detection capabilities. In this paper, a sequential defense 
mechanism is firstly proposed in complex networks for attack inference and vulnerability assessment, 
where the data fusion center sequentially infers the presence of an attack based on the binary attack 
status reported from the nodes in the network. The network robustness is evaluated in terms of 
the ability to identify the attack prior to network disruption under two major attack schemes, i.e., 
random and intentional attacks. We provide a parametric plug-in model for performance evalua¬ 
tion on the proposed mechanism and validate its effectiveness and reliability via canonical complex 
network models and real-world large-scale network topology. The results show that the sequential 
defense mechanism greatly improves the network robustness and mitigates the possibility of net¬ 
work disruption by acquiring limited attack status information from a small subset of nodes in the 
network. 


I. INTRODUCTION 

In the past decade, with the advance of computation 
technology and the accessibility of real-world large-scale 
network data, the exploration and analysis of large-scale 
network attributes have received tremendous attention 
in network science [I| as they disclosed the mysterious 
masks in nature as well as man-made engineered sys¬ 
tems and contrive to answer the fundamental network¬ 
ing problems such as network formulation, dependency, 
resilience and evolution. Such networks, consisting of 
numerous nodes and intricate interconnections embed¬ 
ded with heterogeneous network structures in the graph- 
theoretic point of view, are renowned as complex net¬ 
works [j-Q. Owing to large-scale network size, extreme 
volume of empirical network data, and potentially biased 
network sampling techniques [5[ , explicit analysis on the 
network structure turns out to be computationally infea¬ 
sible and theoretically intractable. Consequently, collec¬ 
tive network attributes instead of exact network topology 
are preferable for complex network analysis, and the de¬ 
veloped measurement metrics (e.g., clustering coefficient 
and network centrality) play an essential role in network 
science and they have been applied to aid the design of 
communication systems [6|. Among all the network at¬ 
tributes, the degree distribution of the entire network 
is one of the most salient feature that specifies the link 
characteristics since the degree distribution is defined as 
the probability distribution of the number of links of an 
arbitrarily selected node in the complex network, and it 
can be specified by a few network parameters. 

What is of our particular interest in network science 
is the study of network resilience Q (i.e., the extent of 
network tolerance to node removals) because of its kin 
relation and assessment to network robustness and con¬ 


nectivity in many networked engineering systems lili3. 
Typical examples include but are not limited to denial-of- 
service (DoS) attacks and jamming attacks. In particu¬ 
lar, the U.S. Department of Energy (DOE) has identified 
attack resistance to be one of the seven major proper¬ 
ties required for the operation of smart grid [T3|. Erom 
the bird’s-eye view of the entire network, the giant con¬ 
nected component vanishes and the entire network is dis¬ 
integrated into several small components when the frac¬ 
tion of the removed nodes exceeds certain critical value, 
which is known as the critical phe nomenon of percola¬ 
tion theory in statistic physics [IJ. More importantly, 
this critical phenomenon can be well mapped to the net¬ 
work robustness and connectivity of many practical net¬ 
worked engineering systems, owing to the network re¬ 
silience protocols that the network retains its operations 
as long as a majority of nodes remain its functionality 
(i.e., most of the nodes are still connected). Throughout 
this paper, the critical phenomenon for network disrup¬ 
tion caused by node removals are used to evaluate the 
performance of the proposed network defense mechanism 
and we denote the critical value for network disruption 
as the percolation-based connectivity. 

Our physical model is built upon the structure of many 
practical networked engineering systems where a data fu¬ 
sion is responsible for data inference and decision mak¬ 
ing as illustrated in Eig. [H Although a vast amount 
of research has been done in analyzing intrinsic network 
resilience in complex networks and devising efficient in¬ 
trusion/anomaly detection techniques in practical net¬ 
worked engineering systems separately, a complete and 
interdisciplinary network robustness analysis including 
both the intrinsic network resilience as well as the em¬ 
bedded attack detection capability is still poorly under¬ 
stood. In this paper, a sequential defense mechanism 
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FIG. 1. Structure of practical engineering system. A data 
fusion center is responsible for data inference and decision 
making based on the feedback data from the network. The 
solid lines represent localized connections (e.g., physical links 
in a power grid) and the dashed lines represent delocalized 
connections (e.g., friends in a social network) in the com¬ 
plex network, (a) Traditional data fusion scheme. Each node 
feedbacks its observation on a common event (e.g., channel 
vacancy or temperature) to the data fusion center for hy¬ 
pothesis test, (b) Intelligent targeted attack. Red solid ar¬ 
rows point to the targeted nodes. An intelligent adversary 
leverages the network topology to target the most vulnerable 
nodes to disrupt the entire network. As this targeted attack 
is not a common event to all the nodes, most of the nodes 
are unaware of the attack and therefore it is more difficult to 
be detected. Consequently, intelligent targeted attack hinders 
the attack inference precision and poses severe threats on the 
network robustness. 


a parametric plug-in model for performance evaluation 
on the sequential defense mechanism, and we implement 
our mechanism in both canonical complex network mod¬ 
els and empirical network data to validate its reliabil¬ 
ity and effectiveness. In addition to analyzing the crit¬ 
ical value to sustain percolation-based connectivity via 
statistic physics approaches M, we would like to point 
out that our defense mechanism is a general framework 
which does not depend on any underlaying complex net¬ 
work models but is applicable to any network with arbi¬ 
trary network structures, provided that the critical value 
of the network can be realized at hand. The results show 
that our defense mechanism greatly enhances the network 
robustness and provides reliable protection against fatal 
attacks, even in the complex networks with fragile net¬ 
work structure and weak detection capability, which also 
offer new insights toward network robustness enhance¬ 
ment and robust network design. 

The rest of this paper is organized as follows. The 
related works are summarized in Sec. nn Preliminaries 
on the percolation-based connectivity and the canonical 
complex network models are introduced in Sec. IIIIl The 
system model and sequential defense mechanism are elu¬ 
cidated in Sec. lEl The critical values under random and 
intentional attacks are analyzed in Sec. [Vl The anal¬ 
ysis on the sequential defense mechanism is derived in 
Sec. ED The performance evaluation of the proposed 
defense mechanism in canonical complex network mod¬ 
els and empirical network data are shown in Sec. IVIII 
Sec. I VIIII provides discussions for robust network design. 
Finally, Sec. HXl concludes this paper. 


is first proposed in complex networks where each node 
performs individual attack detection and sequentially re¬ 
ports binary attack status (i.e., under attack or not) to 
the data fusion center as shown in Fig. [TJ The data 
fusion center then sequentially infers the presence of net¬ 
work attacks based on the feedback and makes a final 
decision when sufficient information has been collected. 
This mechanism is particularly applicable to networking 
paradigms with enormous number of nodes and stringent 
data transmission resources. It is also worth mentioning 
that the proposed sequential defense mechanism is quite 
distinct from the traditional data fusion scheme M due 
to the fact that the network attack may not be a com¬ 
mon event to all the nodes in the network as illustrated 
in Fig. [TJ In other words, an intelligent adversary can 
target at some crucial nodes instead of launching attacks 
on the entire network to efficiently disrupt the network 
and reduce the risks of being detected, which therefore 
hinders the attack inference precision and poses severe 
threats on the network robustness. 

The performance of the proposed sequential defense 
mechanism is evaluated under random and intentional 
attacks, as random attack plays an identical role of tem¬ 
poral node disfunction and intentional attack refers to 
malicious attack caused by an adversary. We provide 


II. RELATED WORKS 

The intrinsic topological vulnerabilities regarding dif¬ 
ferent network structures under random and intentional 
attacks were first introduced in Q. Compared with ran¬ 
dom attack, intentional attack is shown to be quite ef¬ 
fective in disintegrating the entire network by removing 
a relatively small fraction of nodes with the highest de¬ 
gree in the network. As many real-world networks are 
observed to possess a heavy-tailed degree distribution, 
such as the webpage links in World Wide Web (WWW) 
M, router maps in Internet Cl and contacts in email 
networks [T^, the existence of nodes with a relatively 
large number of links render such networks particularly 
vulnerable to intentional attack. Moreover, it has been 
demonstrated in [T^ that intentional attack is the most 
effective attack strategy to disrupt the entire network 
when the network topology is known by the adversary, 
which suggests intentional attack to be an ever-increasing 
threat on the network robustness of many networked en¬ 
gineering systems. 

With the aid of statistic physics and percolation the¬ 
ory 0 , the critical values (i.e., the fraction of removed 
nodes) for a complex network to sustain random and in¬ 
tentional attacks prior to network disruption are investi- 



















gated in [ 2 ^ and ia, respectively, which offer analyti¬ 
cally tractable tools for network robustness assessment. 
Please note that most of the existing research on network 
robustness against attacks mainly focus on intrinsic topo¬ 
logical vulnerabilities while the impacts of implementing 
network defense mechanisms on the network robustness 
are still poorly understood. A naive perfect node pro¬ 
tection scheme is proposed in [22| to prevent a subset of 
nodes in the network from being attacked, which can be 
shown as a degenerate case of our proposed model. A 
two-player, zero-sum attack and defense game is intro¬ 
duce in [lO, 0, 13 alleviate the damage caused by 
intentional attack by acquiring attack status from each 
node for attack inference and defense reaction, and the 
outcome of the game equilibrium is used to evaluate the 
network robustness. However, this mechanism is not suit¬ 
able in networked systems with an enormous number of 
nodes and stringent data transmission resources as fre¬ 
quent data transmissions may deteriorate the system per¬ 
formance and inevitably incur excessive energy consump¬ 
tion. 

To provide efficient defense for complex networks, a 
sequential hypothesis test approach is proposed to 
identify the attack while acquiring as little information 
from the network as possible. The data fusion center 
acquires the reports from each node in descending degree 
order, and therefore it is able to spare the transmissions 
of the unreported nodes once the process of sequential 
test terminates, which balances the goals of promptness 
and accuracy for attack inference. 


III. PRELIMINARIES ON COMPLEX 
NETWORKS 


percolation-based connectivity. The physical interpreta¬ 
tion of the percolation-based connectivity is that owing 
to the network resilience protocols [9[, the network can 
continue its main operations under temporal node dis¬ 
function as long as most of the nodes are still connected. 

According to the seminal work in , given the degree 
distribution P{k) of an arbitrary network, a giant com¬ 
ponent containing the majority of the nodes exists in the 
network if P{k) satisfies the criterion k{k — 2)P{k) > 
0, which is equivalent to the condition 


A E[K^] 
E[K] 


> 2 , 


( 1 ) 


where K G [kmim k^ax] is the random variable represent¬ 
ing the degree of a randomly selected node. With the aid 
of percolation theory, the critical phenomenon of network 
disruption occurs if more than qc fraction of nodes are re¬ 
moved from the network, where the critical value qc can 
be estimated when the remaining degree distribution sat¬ 
isfies the criterion Tc = 2. In other words, the complex 
network transitions from the connected phase to the dis¬ 
connected phase in percolation sense once more than qc 
fraction of nodes are removed. Throughout this paper, 
the critical value qc is used to evaluate the network ro¬ 
bustness under different network structures and attack 
schemes. Please note that in the case of small-scale net¬ 
works, the critical value can be obtained by perform¬ 
ing exhaustive node removal experiments (i.e., searching 
over all possible node removal strategies) instead of using 
statistic physics approaches (i.e., estimating qc by degree 
distribution). 


B. Canonical Complex Network Models 


A. Percolation-based Connectivity in Complex 
Networks 

In the realms of network science, the degree (the num¬ 
ber of links of a node) distribution plays an essential role 
in characterizing the collective topological features. With 
the advance of computation capability and the accessi¬ 
bility of large-scale network data, the long-believed to¬ 
tally random link connections [26| have been overthrown 
by the extraordinary and ubiquitous degree distributions 
found in a variety of research areas, such as the power- 
law distribution in the Internet router-level topological 
maps ITTI] and the small world phenomenon in social net¬ 
works [^. We denote the degree distribution of a com¬ 
plex network by P{k), where k G [kmin.kmax] and kmin 
{kmax) is the smallest (largest) degree of the complex 
network. From the bird’s eye view, the network attack 
can be mapped to the node removal in the corresponding 
network graph (all links attached to the removed node 
are removed as well), and the network is said to be con¬ 
nected in percolation sense if the giant component (the 
connected component that includes a majority of nodes) 
still exists after node removal, which we refer to as the 


In this paragraph, we introduce three canonical com¬ 
plex network models that serve as the platforms for per¬ 
formance evaluation of the proposed defense mechanism. 

• ER network. In an ER network [2^, a link be¬ 
tween any arbitrarily selected node pair is present 
with probability Per- If the network size is large 
enough, the degree distribution approaches to the 

'P 'p/v ^ 

Poisson distribution P{k) = where k = 

N ' Per is the mean degree of the network and N 
is the number of nodes in the network. 

• Power-law network. A power-law network pos¬ 
sesses a skewed degree distribution P{k) ^ k~^^ 
where o > 0 is the skewness parameter. The heavy 
tail of the degree distribution suggests the existence 
of the hub nodes that few nodes have relatively high 
degree compared with most of the nodes in the net¬ 
work, which well explains the connectivity of the 
WWW [HI or the Internet router maps [l7| . 

• Exponential network. An exponential network 

has its degree distribution P{k) ^ ^ where 



/3 > 0 is the mean degree of the network in the large 
scale network limit. It is demonstrated in [29| that 
the degree distribution of the power grid can be 
characterized by the exponential distribution, both 
in the national power grid scale and the European 
power grid scale. 


IV. SYSTEM MODEL 

A. Network Model and Sequential Defense 
Mechanism 

Without loss of generality, we consider the complex 
network model consisting of N nodes characterized by 
its degree distribution P{k) and the corresponding crit¬ 
ical value Qc to sustain network connectivity against at¬ 
tacks. Each node is equipped with certain detection ca¬ 
pability, for instance, intrusion detection techniques 
or malicious activity filtering [3l| for attack inference. 
The N nodes are sorted in descending degree order, i.e., 
ki > k 2 ,> ... > /cat. Let Hi denote the hypothesis that 
the attack occurs in the complex network (either on one 
node or several nodes simultaneously), and Hq denote 
the alternative hypothesis of a null attack (i.e., there is 
no attack in the network). Based on the nodal detec¬ 
tion, every node sequentially reports its binary hypothe¬ 
sis testing decision to the data fusion center in descending 
degree order since intuitively the removal of nodes with 
higher degree results in more severe damage to the net¬ 
work robustness. 

It is worth mentioning that although enabling local 
information exchange or cooperative detection among 
nodes may enhance the attack inference precision, these 
approaches inevitably increase the computation and data 
transmission overheads. Throughout this paper, we will 
concentrate on the degree-based sequential defense mech¬ 
anism owing to its feasibility and simplicity. In practice, 
these local decisions can be transmitted in the header of 
data packets, or a node is regarded as being attacked if it 
fails to reply to the periodic beaconing from the data fu¬ 
sion center. If the attack is confirmed by the data fusion 
center, network defense schemes such as node quaran¬ 
tine or system renewal will be launched to alleviate the 
damage, otherwise it keeps surveillance on the collected 
information. 

The advantages of reporting binary attack status for 
sequential defense in complex networks reside in the fea¬ 
sibility of data transmission and computation complex¬ 
ity in the large-scale networked systems. The enormous 
network size (e.g., Internet routers or wireless sensors) 
render simultaneous data transmissions infeasible, espe¬ 
cially for wireless networks with scarce radio resources. 
Moreover, owing to the large network size and limited 
computational power, analyzing the collected informa¬ 
tion from all nodes incurs tremendous computation over¬ 
heads and it may fail to provide timely defense. Conse¬ 
quently, sequential hypothesis test with minimum (one- 


bit) feedback information is an essential must for attack 
inference in complex networks because of its least addi¬ 
tional communication overheads and timely defense. In 
other words, the sequential hypothesis test terminates 
once sufficient information is collected and a final deci¬ 
sion is made by the data fusion center so that the system 
can spare the transmissions of the unreported nodes. 

Let Xi denote the attack status reported by the ith 
node. Xi = 1 when the attack on the ith node is detected 
and Xi = 0 for null attack on the ith node. We assume 
that the detection capability of each node is identical 
with probability of detecting an attack Pd and probabil¬ 
ity of false alarm Pp. Each node performs independent 
hypothesis test such that the joint probability distribu¬ 
tion of the first m < N reports when Hj is true can be 
represented as P(xi,... ,x^|Pj) = Hili 
general, we assume Pd > Pf, otherwise the sequential 
hypothesis test should be altered for attack inference. 

B. Sequential Probability Ratio Test (SPRT) 

Using sequential analysis [25|, let Pjm = 
Y\^iP{xi\Hj) denote the probability of obtaining 
a report sample (xi,... ,x^), the sequential hypothesis 
test is carried out by performing the probability ratio test 
with two specified parameters A and B. After receiving 

the report from the mth node, if > A < P^, 

then the data fusion center declares the presence of a 
(null) attack, otherwise it keeps surveillance on the next 
report for attack inference. Moreover, for purposes of 
practical computation, it is much more convenient to 
perform sequential probability ratio test by computing 
the logarithm of the ratio instead of the ratio itself 
as the product of individual tests can be decomposed 
into sum of the log likelihood ratios. 

Let Zi = log p[^'|do) denote the log likelihood ratio of 

the ith report and = YhLi = YT=i log k^-|go) 
denote the cumulative value of the first m reports for 
hypothesis testing. Consequently, the sequential hy¬ 
pothesis test is terminated with hypothesis Hi (Hq) if 
Am > log A (Am < logP), otherwise the process is con¬ 
tinued by taking an additional report. These two param¬ 
eters A and B can be determined by setting A = 
and B = where 6 = P(say Hi when Hq is true) 

and 0 = P(say Hq when Hi is true) are the required 
false alarm and miss detection probabilities at the sys¬ 
tem level. 


V. CRITICAL VALUES UNDER RANDOM AND 
INTENTIONAL ATTACKS 

Incorporating the topological vulnerabilities of the 
complex network, the critical value Qc to sustain 
percolation-based connectivity under random and in¬ 
tentional attacks are analyzed with respect to distinct 




canonical complex network models. For comprehensive 
analysis and clear reading, only the results are displayed 
in this section and the mathematical derivations are 
placed in the appendices. 


A. Random Attack 


by solving 
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( 4 ) 


Detailed derivations can be found in Appendix [Bl 


Random attack on the q fraction of nodes in the net¬ 
work plays an identical role of random node removal. 
Given the original network degree Kq of a randomly se¬ 
lected node, the critical value for random attack becomes 

1 ^ ( 2 ) 

To - 1 


where tq = is calculated from the original 

degree distribution. For ER network, q^an-ER _ 
1 — i. For power-law network, q^an-POW _ ^ — 

( %-cx ^ 2 -cx — l) • For exponential network, 

\ O O' / 

q^an-EXP _ - ^ Detailed deriva¬ 

tions can be found in Appendix 


B. Intentional Attack 

As demonstrated in im , removing q fraction of nodes 
with the highest degree in the network is equivalent to 
randomly removing q fraction of nodes in the remain¬ 
ing network with new cutoff degree k^ax < ^max- With 
the continuous degree approximation and the relation 
~ //T" P{k)dk = the new cutoff degree 

kmax can be evaluated from 


C. Unified Notations for Attack Schemes and 
SPRT 


Since each node sequentially reports its one-bit detec¬ 
tion result to the data fusion center for attack inference, 
let Ri denote the probability of attacking Rh node, we 
introduce the unified notations for the aforementioned 
attack schemes as 



^{ai • Pd), 
^(Pf), 


if j = 1, 

if j = 0, 


( 5 ) 


where ^{p) is the Bernoulli trial with probability of suc¬ 
cess {xi = 1) equals p. Incorporating the attack schemes, 
we have 


^ran _ ^ran 


g™", V i-, 

^int _ 1 I Pf 

-/I Pf. Pe 


(6) 

( 7 ) 


where Id denotes the indicator function of the event E 
and [x] is the smallest integer that exceeds x. 


VI. PERFORMANCE ANALYSIS OF 
SEQUENTIAL DEFENSE IN COMPLEX 
NETWORKS 


pf^max pOO -j 

/ _ P{k)dk = / ^ P{k)dk -^=q. (3) 

Ju—U J U—U iV 

Moreover, q can be interpreted as the link deletion prob¬ 
ability of a randomly selected link leading to a deleted 
node, which equals the ratio of the number of links be¬ 
longing to the deleted nodes to the number of links 
m mi, i.e., q = By specifying the 

relations between link deletion probability and targeted 
node removal in ©, the critical value qc under inten¬ 
tional attack can be obtained by evaluating the critical 
link deletion probability qc with the ubiquitous criterion 
for percolation-based connectivity in (|2]). 

For ER network, i _ i 

[kmax-^y- k 

Eor power-law network, q'^j^t-POW _ ^ ^ 

exponential network, the critical value can be obtained 


Given the specified system parameters (^, 6>), we are in¬ 
terested in the effectiveness and the performance of the 
proposed sequential defense mechanism against random 
and intentional attacks in complex networks. Eurther- 
more, knowing the critical value qc, the data fusion cen¬ 
ter is required to infer the presence of the attack prior 
to the network disruption. In other words, a final deci¬ 
sion has to be made according to the first Me = [V • gd 
reports for practical implementation purposes, which we 
refer to as the worst case scenario. Upon the reception of 
the Mcth report, if a final decision has not been reached, 
the data fusion center declares the presence of attack 
when 0 < Amc < log A and declares a null attack when 
log 5 < Amc < 0 . 

Let Mj denote the expected number of reports re¬ 
quired for hypothesis testing when Hj is true. The pro¬ 
posed sequential defense mechanism is regarded as effec¬ 
tive against attacks in the complex network if Mi < 
i.e., the number of reports required for attack inference 












is less than the threshold of network disruption, other¬ 
wise the defense is in vain since it fails to provide timely 
defense reaction. We derive the closed-form expressions 
of Ml for random and intentional attacks, and we prove 
that for intentional attack, taking additional reports from 
m > Me nodes does not improve the performance of the 
sequential defense mechanism. 


A. Random Attack 


For random attack, with ^ we have 

m 

Plm = Y[P{Xi\H^) 

m 

Pom = Y[P{Xi\Ho) 
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m — drr 
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(9) 


where dm is the number of ones in the first m reports. 
Simple calculation on yields 


Km — dm log 
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( 10 ) 


Following the process of SPRT in Sec. lIVBi the sequen¬ 
tial defense criterion for random attack becomes 
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^ keep surveillance, otherwise. 


The expected number of reports to identify random at¬ 
tack when Ml is true is 

,^ran _ log g + (1 - 6>) log ^ 

' nzi\F] 

^ _ ^logT^ + (l-^)log^ _ 

qranpj^ log + (1 - q^^^^Po) log ' 

( 11 ) 

For the worst case scenario, if m is large enough, from 
central limit theorem we obtain the lower bounds of the 
probability that the SPRT will terminate by declaring 
attack or null attack with m < Me reports as [25| 

P(declare attack) = P{Am > log A) > 1 — $(^i(Mc)); 

( 12 ) 

P(declare null attack) = P{Am < logP) > ^(^ 2 (Mc)), 

(13) 


where ^(x) is the cumulative density function (CDF) of 
a standard normal distribution, and 
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where a{zi\Hi) and a{zi\HQ) are the standard deviation 
of Zi under Hi and Pq, respectively. Moreover, when 
a final decision needs to be made upon the reception of 
Mcth report, the system level false alarm and miss de¬ 
tection probabilities (h, 9) when taking Me reports are 
bounded by [ 2 ^ 


5{Me) <5 + ^vYMc)) - $(l/4(Mc)); (19) 

e{Me) < 0 + HvYMc)) - HveiMe)), ( 20 ) 


where 
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( 22 ) 

(23) 

(24) 


The aforementioned equations are well-known results 
from [ 25 I applied by the specified parameters Pp, 

Pd and Me. Interested readers are referred to for 
more details. 


B. Intentional Attack 

Let dm denote the number of nodes reporting attack 
for the first M = reports and dm' denote the 

number of nodes reporting attack starting from the m'th 
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node (m' > M). With ([6]), we obtain 


Plm = Pfr [(1 - Pnr-^’-lmKM + (1 " Pd)^-'' 

• lm<M + 

= [(1 - Por-^^-lmKM + (1 - Pd)^-'^ 
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m>M 


(25) 

(26) 


The cumulative log likelihood ratio becomes 


A^m — dfYi log T 
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+ + Mlm>M) log --(27) 

I — fp 

which suggests that taking additional reports starting 
from the m'th node does not help to improve the perfor¬ 
mance of the sequential defense mechanism as intuitively 
intentional attack targets only on the first M nodes. The 
sequential defense criterion for intentional attack is 


say Hi, 


log ^-logy 


-Pp 


log^ 

T {TTll.Yn<M T F5 

log p^-log 
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log pg--iog3^ny 
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keep surveillance, otherwise. 


The expected number of reports required to identify in¬ 
tentional attack when Hi is true is 


M^nt 


^logi^ + (l-^)log^ 

Pd log ^ + (1 - Pd) log jE^ ' 


(28) 


Consequently, the sequential defense mechanism loses 
its appeals if Mi > Me since the reports received are 
insufficient for attack inference before the adversary dis¬ 
rupts the entire network as proved in (|27|) . Moreover, it 
is easy to show that the performance of worst case sce¬ 
nario (M = Me) for intentional attack is identical to that 
of random attack by substituting Me = and 

into ([I2]), (1131) . (11^ and ([20]). 
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FIG. 2. Vulnerabilities of different canonical complex network 
models under random and intentional attacks. Intentional at¬ 
tack is much more effective in disintegrating a complex net¬ 
work compared with random attack. Although power-law net¬ 
works are resilient to random attack, they are very vulnerable 
to intentional attack due to the existence of hub nodes with 
relatively high degree. 



FIG. 3. Number of reports required for attack detection 
(^ran) rcspcct to undcr random attack. M^^^ 

is shown to be a decreasing function of Pd due to better 
precision in attack inference. increases with Pp to dis¬ 

tinguish between attack and null attack. 


VII. PERFORMANCE EVALUATION 

In this section, the proposed sequential defense mech¬ 
anism is employed on canonical complex network models 
as well as empirical network data to evaluate the system 
performance and offer new insights on robust network 
design. The system parameters are set to be V = 10000, 
ki = 1000 , /cat = 1 , = 0.01 and 0 = 0.001 without 

additional specifications. 
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FIG. 7. Performance of sequential defense against random 
attack in exponential networks with Pf = 0.001. 


FIG. 4. Number of reports required for attack detection 
respect to Pd under intentional attack. Gom- 
pared with random attack, the proposed sequential defense 
mechanism requires only a few number of reports to target in¬ 
tentional attack, even in the low detection probability regime. 


FIG. 6. Performance of sequential defense against random 
attack in power-law networks with Pf = 0.001. 
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FIG. 5. Performance of sequential defense against random 
attack in ER networks with Pf = 0.001. 


A. Critical Values of Canonical Complex Network 
Models 

For fair comparisons between different canonical com¬ 
plex network models, we set the original mean degree to 

be identical such that k = ci- ^ 2 -q^ — = kjyPP and ac¬ 
cordingly extract the network parameters k, a and [3 for 
ER, power-law and exponential networks. As shown in 
Fig. [21 the critical value qc approaches to 0 as the mean 
degree decreases to 1 for all canonical complex network 
models since intuitively a network is prone to disruption 
if every node has only one link in average. On the other 
hand, the critical value increases with the mean degree 
as every node is able to connect to more nodes in the 
network in order to strengthen the network connectiv¬ 
ity. Compared with random attack, intentional attack is 
shown to be more effective in disintegrating a network 
by sabotaging a small fraction of nodes with the high¬ 


est degree. Moreover, despite the fact that the power- 
law network is resilient to random attack, the inherently 
skewed degree distribution render it quite vulnerable to 
intentional attack due to the existence of hub nodes with 
relatively high degree, which reveal the bottleneck of net¬ 
work robustness against intelligent attacks. 


B. Performance of Sequential Defense Mechanism 

By employing the proposed sequential defense mecha¬ 
nism in the complex networks, we select the number of 
reports required to identify an attack (Mi) as the per¬ 
formance measure for timely and efficient defense. As 
shown in Fig. |3l Mf^’^ is shown to be a decreasing func¬ 
tion of Pd because of better precision in attack inference, 
and increases with Pp in order to distinguish at¬ 
tack and null attack. In addition, since is also 

a decreasing function of ^ the optimal attack strat¬ 
egy for an intelligent adversary to disrupt the complex 
network would be choosing q'^^^ = in order to dis- 
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FIG. 8. Probability of acceptance and rejection under worst 
case scenario with Pf = 0.001. The probability of acceptance 
can be interpreted as the precision for attack inference, and 
the probability of rejection can be interpreted as the proba¬ 
bility for an adversary to disrupt a network. 

Random Attack Intentional Attack 




FIG. 9. System level false alarm probability under worst case 
scenario with Pf = 0.001 and S = 0.01. 


rupt the network while minimizing the risks of being de¬ 
tected. The performance of sequential defense mecha¬ 
nism against intentional attack is shown in Fig. IH Simi¬ 
lar to random attack, increases with Pp to validate 

the presence of attack. Compared with random attack, 
the proposed sequential defense mechanism requires only 
a few number of reports to target intentional attack, even 
in the low detection probability regime. 

To gain clear insights on the performance of the pro¬ 
posed sequential defense mechanism, we plot and 

its contours with respect to the network parameters and 
Pd for ER, power-law and exponential networks in Fig. 
[SI Fig. island Fig. [71 respectively. The network parame¬ 
ters are associated with the critical values under random 
attack as discussed in Sec. El For ER and exponential 
networks, increases with the decrease of k (/3) and 

Pd as the mean degree is proportional to k {/3) and low 
Pd hinders the process of SPRT. Eor power-law networks. 


FIG. 10. System level miss detection probability under worst 
case scenario with Pf = 0.001 and 0 = 0.001. 


more skewed degree distribution (larger a) incurs larger 
network is prone to disruption as a in¬ 
creases [ 2 ^. 


C. Reliability of Sequential Defense Mechanism 

To validate the reliability of the proposed sequential 
defense mechanism, the performance of worst case sce¬ 
nario is investigated with respect to the critical values to 
sustain network connectivity. In view of practical imple¬ 
mentations, an attack decision has to be made upon the 
reception of Me = \N • qc] reports. The probability of 
acceptance (declaring attack) and the probability of re¬ 
jection (declaring null attack) are displayed in Fig. [51 It 
is observed that the proposed sequential defense mech¬ 
anism achieves high accuracy as the probability of ac¬ 
ceptance (probability of rejection) approaches to 1 (0) at 
extremely small critical values, and higher Pd enhances 
the accuracy for attack inference, which validate that the 
proposed sequential defense mechanism is able to identify 
the attack with high precision. More importantly, given a 
critical value of a complex network, the probability of ac¬ 
ceptance can be interpreted as the precision of identifying 
an attack prior to the network disruption, and the proba¬ 
bility of rejection can be interpreted as the probability for 
an adversary to disrupt a complex network. The system 
level parameters {S{qc),0{qc)) of the worst case scenario 
are demonstrated in Fig. [9] and Fig. [TOl respectively. 
These parameters converge to the desired system level 
parameters (^, 0) at extremely small critical values, sug¬ 
gesting that the proposed sequential defense mechanism 
offers reliable and effective approaches against random 
and intentional attacks in complex networks. 






































FIG. 11. Performance of sequential defense mechanism un¬ 
der random attack with empirical network data. The crit¬ 
ical values are = (0.9909,322780), = 

(0.9673,6000) and = (0.629,764) for the WWW, 

Internet and EU power grid, respectively. 



FIG. 12. Performance of sequential defense mechanism under 
intentional attack with empirical network data. The critical 
values are (g^^ = (0.067, 21824), (g^^ Me) = (0.03,187) 

and Me) = (0.275, 766) for the WWW, Internet and EU 
power grid, respectively. 


D. Empirical Network Data 

As a demonstration, the proposed sequential defense 
mechanism are implemented in real-world large-scale net¬ 
works with network parameters extracted from empiri¬ 
cal network data collected in HH. The WWW con- 
tains 325729 nodes (webpages) and 1798353 links with 
E[Ko] = 4.6. The Internet router-level map contains 
6209 nodes (routers) and 12200 links with E[Ko] = 3.4. 
The EU power grid contains 2783 nodes (power stations) 
and 3762 links with E[Ko] = 3.4. The WWW and the 
Internet are power-law networks with network parame¬ 
ters a = 2.1 and a = 2.5, respectively. The EU power 
grid is an exponential network with network parameter 
P = 1.63. As shown in Fig. [TTl the number of reports 
required to identify random attack (Mf^’^) is lower than 
the threshold Me, even in the case of weak detection ca¬ 
pability (low Pd). On the other hand, Mf^’^ increases 


with Pp as the data fusion center requires more reports to 
distinguish between attack and null attack when the false 
alarm probability increases. Fig. [12] displays the perfor¬ 
mance of the sequential defense mechanism with respect 
to Pd and Pp under intentional attack. A surge increase 
of is observed with the decrease of Pd and the in¬ 
crease of Pp, suggesting that the defense configurations 
have to be adjusted according to network characteristics 
in order to guarantee robust and reliable operations of 
the entire system, especially for the networks which are 
particularly vulnerable to intentional attack. 


E. US Power Grid 

We implement the proposed sequential defense mecha¬ 
nism on the US power grid topology collected in [^. In 
addition to degree and random attacks, we also consider 
betweenness attack, where betweenness of a node is de¬ 
fined as the fraction of all shortest paths passing through 
the node among all shortest paths between each node pair 
in the network [^. As shown in Fig. [131 f^he network 
resilience is evaluated in terms of the largest component 
size when a subset of nodes is removed from the network. 
Given the expected number of reports required for attack 
detection Mi, if an adversary attacks less than Mi nodes 
in the network, then the attack will not be detected, 
which we refer to as the undetectable region. As shown 
in Fig. [131 Mi decreases as Pp increases, and it is shown 
to be relatively small compared with the network size. 
Notably, in the undetectable region, most of the nodes 
are still connected, even with small Pp. The results in¬ 
dicate that the proposed sequential defense mechanism is 
quite effective in attack detection and the network suffers 
slight connectivity loss in the undetectable region. Note 
that the perfect protection defense strategy proposed in 
[ 22 I is a degenerate case of our proposed mechanism when 
Pp ^ 1 and Pp ^ 0. It results in extremely small Mi 
and suggests that a network can be robust to attacks if 
perfect protection is plausible. 


VIII. DISCUSSIONS TOWARD ROBUST 
NETWORK DESIGN 

Based on the performance analysis of a complex net¬ 
work empowered with the proposed sequential defense 
mechanism, we provide some insights on robust network 
design against attacks in complex networks. To guar¬ 
antee that the process of SPRT terminates before an 
adversary paralyzes the entire system, the baseline re¬ 
quirement for the network disruption threshold is Me > 
max Ml’^^}, which ensures that the data fusion 

center can acquire sufficient information for attack infer¬ 
ence and make immediate reactions against the attacks 
prior to the network disruption. In other words, in the 
network operator’s point of view, one has to enhance the 
critical values of a network under attacks to maintain 




















FIG. 13. Performance of sequential defense mechanism on US 
power grid topology [IJ] under different attack schemes with 
Pf = 0.005. The power grid topology contains 4941 nodes 
(power stations) and 6594 edges (power lines). For random 
attack, the results are averaged over 100 realizations. The 
expected number of reports (Mi) needed for attack detec¬ 
tion is relatively small and it decreases as Pd increases. The 
proposed sequential defense mechanism is quite effective in 
the sense the network suffers slight connectivity loss when 
the number of attacked nodes is less than Mi (i.e., the unde¬ 
tectable region), even for small Pd. 



FIG. 14. Operation curves of Pd and Pf with respect to a 
specified network disruption threshold Me under intentional 
attack. The feasible operation region are composed of the 
feasible parameters {Pd,Pf) such that Me > Ml^^ in order 
to guarantee network robustness. 

the operations of the defense mechanism in the system, 
which can be achieved via different approaches in con¬ 
sideration of the network configurations and implemen¬ 
tation costs. Consequently, this paper offers analytically 
tractable tools for robust network design and network 
defense performance assessment. Potential approaches 
to network robustness enhancement are discussed as fol¬ 
lows. 


• Link Addition. As shown in Fig. [2l adding 
more links in the network (i.e., increasing the mean 
degree) strengthens the network connectivity and 
thereby offers more protection against attacks. Al¬ 
though link addition is a straightforward solution 
1^ . [33 5 the major drawback of link addition is that 
it may decrease the system revenue if the costs for 
link constructions are high, such as the transporta¬ 
tion systems. 

• Topology Adjustment. As the network re¬ 
silience varies from network parameters, the crit¬ 
ical value of a network can be modified by topol¬ 
ogy adjustment while keeping the number of links 
in the network (i.e., the mean degree) unchanged 
[sil, which is especially suitable for networks con¬ 
nected by logical configurations (e.g., the WWW). 
For an example, as demonstrated in Fig. [21 adjust¬ 
ing a power-law network to an exponential network 
enhances the resilience against intentional attack 
at the cost of decreasing the resilience against ran¬ 
dom attack, which offers tradeoffs between M^^^ 
and Mi^K 

• Detection Capability Enhancement. In cases 
that link addition and topology adjustment are in¬ 
feasible and thereby the critical values can not be 
modified, one has to enhance the detection capabil¬ 
ity to provide reliable network defense against at¬ 
tacks. Take sequential defense against intentional 
attack as a motivating example, the sequential de¬ 
fense mechanism is able to target intentional attack 
if the network disruption threshold Me is no less 
than Ml’^^. Applying this criterion to (|28|) , the fea¬ 
sible parameters Pd and Pp for sequential defense 
mechanism need to satisfy the inequality 

PDl0g^ + (l-PD)l0gl^ 

> ^logA + (l-^)log¥ .29) 

The operation curves when the equality in (|29|) 
holds given a specified network disruption thresh¬ 
old (Me) are shown in Fig. [TH which can be inter¬ 
preted as the minimum detection probability {Pd) 
required to perform sequential defense with respect 
to a false alarm probability Pp and Me. The feasi¬ 
ble operation region is composed of the parameters 
{Pd^Pp) satisfying the inequality in (|29|) . and the 
increase of Me enlarges the feasible operation re¬ 
gion since the data fusion center can acquire more 
reports for attack inference prior to network dis¬ 
ruption, even in the low Pp regime. 

IX. CONCLUSION 

In this paper, a sequential defense mechanism based 
on sequential hypothesis test is proposed in complex net- 


























works with an aim of enhancing the network robustness 
of networked engineering systems. This mechanism pro¬ 
vides timely and efficient defense against random and 
intentional attacks by sequentially acquiring binary at¬ 
tack status of each node in descending degree order. The 
data collection process terminates once a final decision 
has been made by the data fusion center, which is partic¬ 
ularly preferable in networking paradigms with stringent 
data transmission resources. Therefore the low compu¬ 
tation complexity and sequential transmission schemes 
render this defense mechanism compatible to practical 
networked engineering systems. A parametric plug-in 
model is proposed to evaluate the performance of the 
proposed sequential defense mechanism. By implement¬ 
ing this mechanism on the canonical complex network 
models as well as the empirical network data extracted 
from the WWW, the Internet, the EU power grid, and 


the US power grid topology, the results validate the ef¬ 
fectiveness and reliability of this mechanism against fatal 
attacks. These attacks can be identified with high pre¬ 
cision with limited binary attack status reported from 
a small subset of nodes in the network and thereby im¬ 
mediate defense reactions can be performed prior to the 
network disruption, even in the weak topological vulner¬ 
ability and low detection capability regime. Based on the 
performance analysis and network configurations, several 
approaches including link addition, topology adjustment 
and detection capability enhancement are elucidated to 
guarantee robust operations of the entire system. Con¬ 
sequently, this paper provides profound theoretic frame¬ 
work of sequential defense in complex networks and of¬ 
fers new insights on robust network design in complex 
networks. 
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Appendix A: Critical Value for Random Attack 


Following [ 2 ^, given the original degree distribution 
Po{ko)^ the new degree distribution of the network after 
randomly removing q fraction of nodes (the links ema¬ 
nating from the nodes are removed as well) is 


P{k) = Mko) 

/cq k 


(1 - qrq' 


kkn—k 


(Al) 


Applying (jAip to o, the criterion for the percolation- 
based connectivity after random attack becomes 


(l-g)^E[Ko^]+g(l-g)E[Ko] 
(1 - q)E[Ko] 


(A2) 


Reorganizing (jA2[) . we obtain the critical value = 
1 — as in For ER network, we have E[Ko] = k 
and E[Ko^] = k^ -\-k^ applying to (|2]), we have 


qran-ER = 1 _ ^ (A3) 

k 

For power-law network, the rth moment of the degree 
distribution is E[K’^] = ci • ^ where ci = 

is the normalization factor. Applying to 0 , 

kmax 

we obtain 


ran—POW _ -i _ 


i —Q ^ 

Z-ak1--kl 


- 1 


(A4) 


k 

For exponential network, P{k) = C 2 • ^ where C 2 = 

—^ is the normalization factor. In the large scale 

network limit (i.e., /ci ^ oo), C 2 = e~ , E[K] = k^ + P 
and E[K^] = + 2/cAr/d + 2/3^. We obtain 


ran—EX P 
He 


= 1 - 


1 

k%+2kN^ + ^ 

kN +/5 


(A5) 


Appendix B: Critical Value for Intentional Attack 

For simplicity, we derive the critical value under inten¬ 
tional attack in the large scale network limit {ki oo) 
as follows. It is also suggested in [HI the large scale 
network limit assumption has negligible impacts on the 
accuracy of the critical value provided that the network 
size {N) is large enough. The methodology for deriving 
the critical value under intentional attack is to specify the 
relations between the cutoff degree dmax and the fraction 
of removed nodes q using m, and then apply the cutoff 
degree to the deletion probability q and the criterion for 
percolation-based connectivity in ([2]) to obtain the criti¬ 
cal value ql^^. 


For ER network, from (|3|) we have e and 


Av — l^max [Kmax — ^)- 

is the upper incomplete gamma function. 

kPjk) 

^k=kmax IE[Ko] 
g-A: ^ ^ ^ 

{krnax 1 ) • 


The deletion probability becomes q = hPdPl — 


E ki 
k—k 


- n-d-^^-kJP 
H TV 


off degree kmax can be obtained by solving q = 1 — k. 
Consequently, the critical value under intentional attack 
is 


Ant—ER 


1 

~N~^ 


-k 


%krnaa 


-1 


(j^max • 
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(Bl) 


Eor power-law network, from m we have k^^ 


kx {q P ^ " and q a > 1. 


The relations between q and q are q = 


^ ^ 2 —g 

= gi-«. 


E[Ko] ~ 


The cutoff degree kman can be 


( kmax \ 
kN ) 

solved by applying the link deletion probability to the 

fZ \2—a 

criterion in m, which yields the equation ( ] — 

kN (lEf) [(^) 

obtain 


3—a 


- 1 


-2 = 0 


I , and we thereby 


l-a 


Ant—POW 


kx 


(B2) 


Eor exponential network, the relations between the 
cutoff degree and the fraction of removed nodes are 
kmax = + kx‘ The deletion prob- 

ability becomes q ^]dk = ' 

(kmax + exp If fciv is negligible (i.e., kj^ = 

0), we have q= [l - In (g + A)] (g, + ^). Applying the 
result to (|aS 1), the critical value under intentional attack 
can be obtained by solving 


1 - In U, 


Ant—EX P 
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kx + (d 


k^ P 2kxfd P 2f3^ — kx ~ P 
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(B3) 






























